I have a session bean that publishes messages on a topic and a message driven bean that subscribes to that topic.Everything works well when I disable the security.However, when I add the following line in my jboss.xml deployment descriptor, it doesn't work any more:<security-domain>java:/jaas/database-login</security-domain>.I get a "java.lang.SecurityException: Authentication exception, principal=null" that prevents the message driven bean to be "called".As the security works well with my session bean, i whould guess i need to wrap the principal and credential into my message. Is that right? How do I proceed?

Hi,When JBossMQ wants to execute the onMessage MDB method, JBossMQ must have permission to execute it. The way I make it work is as follows:1 - In the auth.conf file, inside the database-login block (before the ;) add the following line:unauthenticatedIdentity="message"2 - In the MDB descriptor add: <assembly-descriptor> <security-role> <role-name>Message</role-name> </security-role> <method-permission> <role-name>Message</role-name>

<ejb-name>.....MDB</ejb-name> <method-name>*</method-name>

</method-permission>3 - Add the the user "message" with the "Message" rol in you security framework.